Key Features
Network Secure VPN Firewall for Departmental
The DFL-1000 is a cost-effective departmental firewall that provides comprehensive network protection,
high performance and easy installation. A hardware device that is much easier to install and more effective
than software-based firewalls, the DFL-1000 offers ideal protection for Small to medium Buisnesses or
corporate departments with plug-and-play connection, complete security against outside intruders, Virtual
Private Network (VPN) support through data encryption and authentication, and easy administration.
Complete Security
Content Filtering & Virus Scanning
Easy Installation
Access Control
Your office is connected to the outside world through the
Internet. It is easy for hackers to analyse your databases
to steal or destroy data. The DFL-1000 provides a wide
range of protection against outside attacks, plus
comprehensive security that includes user authentication,
scheduled policies and Virtual Server Mapping. The
DFL-1000 provides NAT translation of IP addresses from
the internal private network to the public IP network.
The DFL-1000 provides filtering of potentially malicious
codes embedded in web pages to remove Active objects,
Java, JavaScript and other potential threats. It provides
virus scanning for all incoming and outgoing email and
attachments, plus virus checking for Web plug-ins and
downloaded Web contents.
All you need to do is connect the network cables. To the
outside world, you connect an RJ-45 plug to your
DSL/cable modem, Internet gateway or router. To your
office, you plug in another RJ-45 jack to your network
switch or hub. The DMZ port connects to an independent
hub or switch for the DMZ network. The DFL-1000
provides CPU, system memory and embedded software,
all ready to run.
Administration access can be controlled so that the DFL-1000
can be administered from the protected internal network or the
external public Internet. The DFL-1000 supports an
internal/External (RADIUS) database for authenticating
user access to various services. It maps public IP addresses
to information servers on the internal network to allow
public access. It also prevents access to particular web sites,
using powerful pattern matching to block access to URLs or
keywords.
Firewall policies may be scheduled for different times
of the day/week/month and for one time use or
recurring.
The DFL-1000 supports VPN functions including
PPTP, L2TP, IPSec, ESP security in tunnel mode, LAN
to-LAN and mobile remote access.
The DFL-1000 uses a special design ASIC to perform
VPN encryption and decryption. It off-loads CPU
loading through hardware-based acceleration.
The DFL-1000 supports web-based management using
a secure SSL connection from a remote terminal either
on the internal corporate network or even from an
external remote site. The DFL-1000 can also be
administered on-site using its RS-232 serial
connection.
Scheduled Policies
LAN-to-LAN VPN Connection
Hardware Acceleration
Management
Rack-mount firewall with complete virus scanning,
access control, intruder protection, remote VPN
connection and DMZ functions for company
networks.
DFL-1000
Secure system management via VPN Tunnel on any
interface
Triple-DES data encryption
Anti-virus scanning
Easy to install, easy to manage
Web-based management and software updated via
browser
Intruders prevention through MAC Address binding
with IP Addresses
VPN Firewall for Departmental
Technical Specifications
DFL-1000
Hardware Specifications
Processor
300MHz
System Memory
On board 256MB
Flash Memory
64MB CompactFlash Card
Network Interface
3 10/100Mbps ports (1 Internal, 1 External, 1 DMZ)
LED Indicators
- Power
- Status
- Interface link and activity
Services
- ftp
- http
- NAT
Authentication
- HMAC MD5 or HMAC SHA-1 Authentication/data integrity
Key Exchange
- Automatic IKE based on Pre-Shared Key
Attack Protection Provided
- IP Source Routing
- IP Spoofing
- SYN flood attack
- ICMP flood
- UDP flood
- Land attack
- Address sweep attack
- Tear drop attack
- Win nuke attack
- Port Scan attack
- Ping of Death
Software Specifications
Security Feature:
- Firewall: Stateful Packet Inspection (SPI) to Prevent Denial of
Service (DoS) attacks (Syn flood, ICMP flood, UDP flood, "ping of
death", IP spoofing, land attack, tear drop attack, IP address sweep
attack, Win Nuke attack), Intrusion Detection System (IDS) including
logging, reporting and e-mail alerts, address, service and protocol,
Web URL content filtering.
- VPN Functionality: One hundred dedicated VPN tunnels, Manual
key and IKE Security Association (SA) assignment, 56-bit (DES)
or 168-bit (3DES) IPsec encryption algorithm, MD5 or SHA-1
authentication algorithm, pre-shared key, perfect forward secrecy
(Diffie-Helman and Oakley client support), key life and IKE lifetime
time settings, prevent replay attack, remote access VPN (client-to-
Site), site-to-site VPN.
- Mode of Operation: Network Address Translation (NAT), static
routing, unrestricted users per port.
Protocol Support:
- Network: IP routing, TCP/IP, UDP, ICMP, PPPoE
- IP addressing: DHCP (client and server)
- Routing: RIP v1, RIP v2 (Static Routing, Dynmic Routing)
- VPN/ Security: IPSec (ESP), MD5, SHA-1, DES, 3DES, IKE,
PPTP, L2PT
RFC Support:
- PPTP client and server (RFC 2637)
- IPSec tunnel mode (RFC 2401)
- HMAC-MD5-96 (RFC 2403)
- HMAC-SHA1-96 (RFC 2404)
- Encapsulation Security Payload Protocol (RFC 2406)
- DHCP server (RFC 2131)
- DHCP client (RFC 2131)
- TFTP client (RFC 1350)
- IP routing (RIP1, RIP2) (RFC 2453)
- NAT (many-to-one) (RFC 1631)
- PPPoE (RFC 2516)
Dedicated VPN Tunnels
100
Concurrent Sessions
10,000
User Authentication Support
RADIUS external database
Power Input
100 - 240V internal switching power supply
Power Consumption
11 Watts max
Dimensions
441 x 250 x 44 mm (standard rack-mount width, 1 U height)
Operating Temperature
Storage Temperature
Humidity
EMI Certification
- FCC Class A
- CE Class A
- BSMI Class A
- C-Tick
Physical & Environmental
0 C ~ 45 C
0 C ~ 60 C
5% ~ 95%, non-condensing
VPN Firewall for Departmental
Technical Specifications
DFL-1000
VPN Firewall for Departmental
-
1
-
2
-
3
Ask a question and I''ll find the answer in the document
Finding information in a document is now easier with AI
Related papers
-
D-Link DFL-160 User manual
-
Dlink NetDefend DFL-200 User manual
-
D-Link DFL-700 User manual
-
-
-
D-Link NetDefend DFL-1660 User manual
-
-
D-Link NetDefend DFL-1660 User manual
-
-
Other documents
-
-
-
Netgear FVS328 Datasheet
-
Planet ADW-4200B User manual
-
Atlantis I-FLY A02-WRA4-54G User manual
-
ZyXEL ZyWALL 35 Series User manual
-
ZyXEL HW-D Series User manual
-
-
Billion Electric Company 7500GL User manual
-